Cyber Security Architect @ Chester, VA 23836
Ramesh Gude
Hi,
Greetings from HYR Global Source!
Hope you are doing good
We have an immediate below mentioned roles with our reputed customer; kindly share your updated resume, contact details and availability to move forward
Position: Cyber Security Architect
Location: Remote 11751 Meadowville Lane Chester, VA 23836
Duration: 6+ Months
VISA: No Constraints
No # Positions: 2
*Candidate is required to go onsite to pick up equipment
*Role is remote UNTIL restrictions lift, and then it is 100% onsite
The Platform Security Architect is a critical technical role responsible for ensuring the secure design and compliance of the platforms enterprise architecture to effectively and securely support the organization in meeting specific business technology needs. This candidate will be considered a technical expert. Ideal candidates will have the following expectations, execute architecture design reviews to evaluate security controls and identify opportunities to enhance the security posture of the Commonwealths Platform services, build relationships with supplier infrastructure architects and engineering leads to disseminate and explain secure design methodologies and policies. Ideal candidates will also understand the landscape and components of cutting-edge architectures and the methods to securely deploy them.
Duties/Responsibilities:
- As part of a team, ensure the adoption of security architecture and engineering initiatives in order to effectively and securely support the organization in meeting specific business technology needs.
- Review solutions to be deployed in cloud and on premise environments
- Understand technical security issues and the implications to the Platform and be able to communicate them to management and other business leaders.
- Responsible for guiding the design and implementation of secure solutions and services across the Platform.
- Maintain in-depth knowledge of IT industry best practices, technologies, architectures, and emerging technologies.
- Must have knowledge and understanding to be able to configure and implement security solutions to reduce risk to an acceptable level.
- Understand emerging security technologies and determine the appropriate use within business applications.
- Must be able to provide technical guidance and foster a collective understanding of data flows and security issues encountered in both premise based and cloud applications and services.
- Communicate architectural decisions, plans, goals, and strategies
- Must be able to incorporate business drivers, needs and strategies to address future business / technology needs.
- Work in teams for secure application and/or infrastructure solution architecture.
- Collaborate with our Governance organization and functions including Internal Audit, Legal and Compliance, Privacy, and Sourcing to ensure that the Platform maintains a strong cybersecurity posture.
Must Have the following:
- At least 8 years of experience in network and endpoint security architecture
- Experience providing high-level design and architecture diagrams --- Required --- 8 Years
- Technically validating solutions and connecting business, data, security, systems, and other technical and non-technical architectures --- Required --- 8 Years
- Familiarity with open architecture and cybersecurity architecture principles that achieve cybersecurity framework goals --- Required --- 8 Years
- Certified Information Systems Security Professional (CISSP) and Certified Ethical Hacker (CEH) required --- Required --- 8 Years
- Familiar with encryption technologies used in commercial operating systems, including Public Key Infrastructures-continued --- Required --- 8 Years
- Symmetric and asymmetric cryptography, certificate trust stores and the use of key escrow for discovery and legal purposes --- Required --- 8 Years
- Familiar with multi-tiered network applications, common ports and protocols used in those communications- continued --- Required --- 8 Years
- The Common Vulnerability System (CVS) and the exploitation mechanisms of common vulnerability types (e.g. buffer overflows, cross-site-scripting, SQL --- Required --- 8 Years
- Familiarity with protocols commonly used in commercial networks, such as Server Message Block (SMB)-continued --- Required --- 8 Years
- Remote Procedure Calls (RPC), Hypertext Transfer Protocol (HTTP) and Structured Query Language (SQL) --- Required --- 8 Years
- Candidate should have experience leading meetings and other briefings to senior leaders --- Required --- 8 Years
- Candidate should have a background in general security practices such as identity and access management (IAM)-continued --- Required --- 8 Years
- Desired Skills / Certification: • AWS Certified Security • Azure Architect Certification • Google Architect Certification --- Highly desired
- Desired Skills/Certs (continued)- Certified Information Systems Security Professional (CISSP) • Certified Cloud Security Professional (CCSP) --- Highly desired
- Broad knowledge and experience across IT infrastructure with security frameworks and standards such as ISO 27001, NIST, and other relevant security --- Highly desired
- Experience leading the alignment of on-going activities in support of critical State & Federal mandates such as -continued --- Required --- 8 Years
- Continuous Diagnostics and Monitoring (CDM), Executive Orders related to cybersecurity, and guidance from OMB and NIST --- Required --- 8 Years